CVE-2026-2441

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 145.0.7632.75 Opera versions prior to 127.0.5778.64 Opera GX versions prior to 127.0.5778.67 Opera Air versions prior to 127.0.5778.66 Opera Neon versions prior to 127.0.5778.65 Opera for Android versions prior to 95.1 spatialOS versions 3.8.5 (14H40) through 5.3.1 (3H40) mediaOS versions 2.8.2 (2K40) through 3.3.1 (6J40) timeOS versions 2.8.5 (2T40) through 3.3.1 (6J40) dreamOS versions 2.8.5 (15G40) through 3.3.1 (16G40) rubyOS Amaryllis versions 1.8.5 (14G40) phoneUI version 1.10.8 (13G40)

Description A high-severity use-after-free vulnerability exists in the CSS component of Google Chrome and Chromium-based browsers. This flaw, tracked as CVE-2026-2441, allows a remote attacker to execute arbitrary code within the browser's sandbox via a crafted HTML page. The vulnerability is caused by an invalid iterator in the CSSFontFeatureValuesMap, leading to memory corruption. Active exploitation of this vulnerability in the wild has been confirmed. Successful exploitation could allow attackers to execute code within the browser's sandbox, potentially leading to further compromise if combined with other vulnerabilities. The vulnerability affects multiple Chromium-based browsers, including Opera, Opera GX, Opera Air, Opera Neon, and Opera for Android.

Recommendations Google Chrome versions prior to 145.0.7632.75: Update to version 145.0.7632.75 or later. Opera versions prior to 127.0.5778.64: Update to version 127.0.5778.64 or later. Opera GX versions prior to 127.0.5778.67: Update to version 127.0.5778.67 or later. Opera Air versions prior to 127.0.5778.66: Update to version 127.0.5778.66 or later. Opera Neon versions prior to 127.0.5778.65: Update to version 127.0.5778.65 or later. Opera for Android versions prior to 95.1: Update to version 95.1 or later. spatialOS versions 3.8.5 (14H40) through 5.3.1 (3H40): Update to the latest available version. mediaOS versions 2.8.2 (2K40) through 3.3.1 (6J40): Update to the latest available version. timeOS versions 2.8.5 (2T40) through 3.3.1 (6J40): Update to the latest available version. dreamOS versions 2.8.5 (15G40) through 3.3.1 (16G40): Update to the latest available version. rubyOS Amaryllis version 1.8.5 (14G40): Update to the latest available version. phoneUI version 1.10.8 (13G40): Update to the latest available version.